I have a really simple question that I can't seem to find an answer to.
Is http authentication more or less secure than using an html form? Do they both do the same basic thing?
http authentication vs post form
Moderator: General Moderators
From HTTP point of view, it's the same, it's done either by headers or by POST data. From the point of app programing, it's easier to manage logins in a database than in a flat file if you have lots of users. nickvd has a point though, if you need to have one admin and all other users are just guests, just put all admin stuff in a directory, and protect it with .htacess and that's it.